CVE-2007-4730

Buffer overflow in the compNewPixmap function in compalloc.c in the Composite extension for the X.org X11 server before 1.4 allows local users to execute arbitrary code by copying data from a large pixel depth pixmap into a smaller pixel depth pixmap.

Published: 2007-09-11 Last update: 2026-06-16 Assigner: [email protected] Source: [email protected]

Conclusion & alert: CVE-2007-4730 is rated Low Risk (31.4/100): CVSS Medium severity, with low exploitation likelihood (EPSS 0.51%). Mandatory action: Monitor for updates and reassess as exploit intelligence or EPSS changes.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Exploit prediction scoring system (EPSS) score for CVE-2007-4730

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2026-06-15 0.08% 0.51% +0.43%
2 2024-11-06 0.05% 0.08% +0.03%
3 2023-03-07 0.05%

Full EPSS history (4 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2007-4730

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
4.3 2.0 MEDIUM
AV:L/AC:L/Au:S/C:P/I:P/A:P Click to expand
Access vector (AV:L)
Requires local access to the target system.
Access complexity (AC:L)
Exploitation conditions are straightforward and predictable.
Authentication (AU:S)
A single authentication is required.
Confidentiality impact (C:P)
Partial confidentiality impact.
Integrity impact (I:P)
Partial integrity impact.
Availability impact (A:P)
Partial availability impact.
3.1 6.4 [email protected]

Weakness enumeration for CVE-2007-4730

OS Trackers for CVE-2007-4730

vendor priority summary link
debian not yet assigned CVE-2007-4730 not yet assigned priority: Debian including 1 source packages (xorg-server), 5 status rows across 5 suites (bookworm, bullseye, forky, sid, trixie): resolved 5. https://security-tracker.debian.org/tracker/CVE-2007-4730
gentoo high CVE-2007-4730: 1 GLSA(s) (200710-16), 1 atom(s) (x11-base/xorg-server); latest impact high. https://bugs.gentoo.org/buglist.cgi?quicksearch=CVE-2007-4730
redhat medium https://access.redhat.com/security/cve/CVE-2007-4730
ubuntu medium CVE-2007-4730 medium priority: Ubuntu including 1 source packages (xorg-server), 4 status rows across 4 suites (dapper, edgy, feisty, upstream): not-affected 2, needs-triage 1, released 1. https://ubuntu.com/security/CVE-2007-4730

Vendor comments (NVD) for CVE-2007-4730

  • Red Hat (2007-09-26T00:00:00)

    This flaw was fixed for Red Hat Enterprise Linux 4 in RHSA-2007-0898: https://rhn.redhat.com/errata/RHSA-2007-0898.html Red Hat Enterprise Linux 5 is not affected by this flaw. More information can be found here: https://bugzilla.redhat.com/show_bug.cgi?id=285991 Red Hat Enterprise Linux 2.1 and 3 do not support the composite extension and are not vulnerable to this flaw.

Affected software / configurations for CVE-2007-4730

Vendor Product Version Raw CPE
x.org xorg-server 1.01 cpe:2.3:a:x.org:xorg-server:1.01:*:*:*:*:*:*:*
x.org xorg-server 1.1 cpe:2.3:a:x.org:xorg-server:1.1:*:*:*:*:*:*:*
x.org xorg-server 1.02 cpe:2.3:a:x.org:xorg-server:1.02:*:*:*:*:*:*:*
x.org xorg-server 1.2 cpe:2.3:a:x.org:xorg-server:1.2:*:*:*:*:*:*:*
x.org xorg-server 1.3 cpe:2.3:a:x.org:xorg-server:1.3:*:*:*:*:*:*:*

References for CVE-2007-4730

URL Tags
http://bugs.freedesktop.org/show_bug.cgi?id=7447
http://bugs.gentoo.org/show_bug.cgi?id=191964
http://lists.freedesktop.org/archives/xorg-announce/2007-September/000378.html
http://osvdb.org/37726
http://secunia.com/advisories/26743 Patch Vendor Advisory
http://secunia.com/advisories/26755 Patch Vendor Advisory
http://secunia.com/advisories/26763
http://secunia.com/advisories/26823
http://secunia.com/advisories/26859
http://secunia.com/advisories/26897
http://secunia.com/advisories/27147
http://secunia.com/advisories/27179
http://secunia.com/advisories/27228
http://secunia.com/advisories/30161
http://security.gentoo.org/glsa/glsa-200710-16.xml
http://support.avaya.com/elmodocs2/security/ASA-2007-394.htm
http://wiki.rpath.com/wiki/Advisories:rPSA-2007-0187
http://www.debian.org/security/2007/dsa-1372 Patch
http://www.gentoo.org/security/en/glsa/glsa-200805-07.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2007:178
http://www.mandriva.com/security/advisories?name=MDVSA-2008:022
http://www.novell.com/linux/security/advisories/2007_54_xorg.html
http://www.redhat.com/support/errata/RHSA-2007-0898.html
http://www.securityfocus.com/bid/25606
http://www.securitytracker.com/id?1018665
http://www.ubuntu.com/usn/usn-514-1
http://www.vupen.com/english/advisories/2007/3098
https://exchange.xforce.ibmcloud.com/vulnerabilities/36535
https://issues.rpath.com/browse/RPL-1728
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10430
cvelogic Threat Intelligence